Manage (nf_)conntrack in Debian-like systems.
None
-
conntrack_kernel_modules: [default:[]]: List of kernel modules to load -
conntrack_kernel_modules.{n}.name: [required]: Name of the kernel module (e.g.nf_conntrack) -
conntrack_kernel_modules.{n}.params: [optional, default:[]]: List of parameters for this kernel module -
conntrack_kernel_modules.{n}.params.{n}.name: [required]: Name of the parameter -
conntrack_kernel_modules.{n}.params.{n}.value: [required]: Value of the parameter -
conntrack_sysctl_settings: [default:[]]: List ofsysctlsettings -
conntrack_sysctl_settings.{n}.name: [required]: Name of thesysctlsetting -
conntrack_sysctl_settings.{n}.value: [required]: Value of thesysctlsetting
None
---
- hosts: all
roles:
- conntrack
vars:
conntrack_kernel_modules:
- name: nf_conntrack
params:
- name: hashsize
value: 16384
conntrack_sysctl_settings:
- name: net.netfilter.nf_conntrack_max
value: 65536MIT
- Mark van Driel
- Mischa ter Smitten
Are welcome!